Security Technical Program Manager at Jobgether – United States

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Security Technical Program Manager in United States.

This role offers the opportunity to lead complex security programs at the intersection of engineering, compliance, and risk management. You will translate technical initiatives into clear, executable programs that strengthen security posture and ensure regulatory compliance. The environment is fast-paced, remote-first, and mission-driven, emphasizing collaboration, strategic planning, and operational excellence. You will partner with cross-functional teams, including engineering, compliance, and people operations, to drive initiatives that protect sensitive data and systems. Ideal candidates are proactive problem-solvers who thrive in ambiguity, can manage multiple priorities, and are passionate about building scalable security programs that safeguard users and organizational assets. Your work will have a direct impact on the safety and trust of the organization’s patients and providers.

As a Security Technical Program Manager, you will:

• Lead end-to-end execution of security initiatives, including SOC 2, HIPAA, and HITRUST compliance programs.
• Partner with security engineering to translate complex technical objectives into actionable program plans.
• Manage cross-functional projects from conception to completion, including risk identification, mitigation, and stakeholder communication.
• Oversee third-party security risk assessments, vendor compliance, and related remediation plans.
• Run security awareness programs, including phishing simulations, training campaigns, and tracking progress metrics.
• Influence security strategy and alignment across Engineering, Compliance, and People Ops teams.
• Monitor program milestones, KPIs, and reporting to ensure timely delivery and organizational transparency.

Candidates should have:

• 5+ years of experience in Security Technical Program Management or Security Risk and Compliance roles.
• Proven experience managing security programs in regulated environments, including SOC 2, HIPAA, or HITRUST.
• Moderate understanding of modern security vulnerabilities in code and infrastructure, including risk prioritization.
• Experience managing third-party risk and compliance requirements.
• Expertise with project management tools (e.g., JIRA) and program execution best practices.
• Experience leading security awareness initiatives and measuring effectiveness.
• Strong communication, collaboration, and stakeholder management skills.
• Preferred: experience in healthcare SaaS or other highly regulated industries, familiarity with cloud-native security architecture (especially AWS), and experience reporting KPIs to leadership.

• 100% remote work with flexible hours (U.S.-based, excluding Hawaii).
• Competitive salary with full transparency across the United States.
• Comprehensive health coverage: medical, dental, vision, life, disability, and FSA/HSA.
• 401(k) plan access for retirement savings.
• Generous paid time off, including 2 company-wide shutdown weeks.
• Paid parental leave for all parents, including birthing, non-birthing, adopting, and fostering.
• Employee Assistance Program (EAP) supporting mental and physical health.
• Home office stipend and quarterly department stipends for team-building or gatherings.
• Wellness events, lunch & learns, and community/employee resource groups fostering inclusion.